cfn-guardian 0.8.6 → 0.9.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0b6ceb0fb842b5d52ef3c36533bc77be47aeecc9f7aa358845fe8ec3a716e838
-  data.tar.gz: f902b5a1ade88029205fe6dce4b3729a300a1539ee1cef0cc81d2fb9f3bc1e6e
+  metadata.gz: 6ada08812236c0f6a899a13847fda66a1e2b5c218f8f422cf210bed1ac04be44
+  data.tar.gz: c21ed6acd2eab4f673f9ac06ae06eb3a39059e1ba0bd82eddbb06ab57e908020
 SHA512:
-  metadata.gz: cae989c263e5625f069c3f6941290ded67b9d46323ae806b395bcea6f5b2e99bf5e637b8869fc05f7dc62f1ab3345e4912d3d8ae5b8b1fc6d77b52864d74726b
-  data.tar.gz: 6a6e68d8ab85bf219af792fa0759059f921de279b408163d54f96e059464208073fc4e78aa1fd8e62fed67a5b921d51abf3f265da4a092d149a97403f2dfbe39
+  metadata.gz: 2a39f90cea2a6ccf82e5a82d66b4586fe9d5bd227e470bd8322fda671b9bcadf5d82f814c33f602460db3f81b15e2b492e3812b8770568e6f4742c4089f477e8
+  data.tar.gz: 26ce905c4f0b8f6e52d13968f74528c125d9d1e43938f9f31ccc40fd8f65d91f76802c804b6bbd4f61550966eee5cdc0b5f918bdad22b2091c9750799ea7eefd

data/cfn-guardian.gemspec

@@ -36,6 +36,8 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'aws-sdk-codecommit', '~> 1.28', '<2'
   spec.add_dependency 'aws-sdk-codepipeline', '~> 1.28', '<2'
   
+  spec.add_runtime_dependency('rexml', '>= 0')
+  
   spec.add_development_dependency "bundler", "~> 2.0"
   spec.add_development_dependency "rake", "~> 13.0"
 end

data/exe/cfn-guardian

@@ -1,4 +1,4 @@
 #!/usr/bin/env ruby
 require "cfnguardian"
-
+$stdout.sync = true
 CfnGuardian::Cli.start( ARGV )

data/lib/cfnguardian/compile.rb

@@ -93,7 +93,7 @@ module CfnGuardian
             if @templates.has_key?(group) && @templates[group].has_key?('Inherit')
               begin
                 resource_class = Kernel.const_get("CfnGuardian::Resource::#{@templates[group]['Inherit']}").new(resource, group)
-                logger.debug "Inheritited resource group #{@templates[group]['Inherit']} for group #{group}"
+                logger.debug "Inherited resource group #{@templates[group]['Inherit']} for group #{group}"
               rescue NameError => e
                 logger.warn "'#{@templates[group]['Inherit']}' resource group doesn't exist and is unable to be inherited from"
                 next
@@ -181,9 +181,7 @@ module CfnGuardian
       raise CfnGuardian::ValidationError, "#{errors.size} errors found\n[*] #{errors.join("\n[*] ")}" if errors.any?
     end
     
-    def compile_templates(bucket,path)
-      clean_out_directory()
-      
+    def compile_templates(template_file)      
       main_stack = CfnGuardian::Stacks::Main.new()
       main_stack.build_template(@stacks,@checks,@topics,@maintenance_groups,@ssm_parameters)
       
@@ -192,11 +190,7 @@ module CfnGuardian
 
       valid = main_stack.template.validate
       FileUtils.mkdir_p 'out'
-      File.write("out/guardian.compiled.yaml", JSON.parse(valid.to_json).to_yaml)
-    end
-    
-    def clean_out_directory
-      Dir["out/*.yaml"].each {|file| File.delete(file)}
+      File.write("out/#{template_file}", JSON.parse(valid.to_json).to_yaml)
     end
 
     def load_parameters(options)

data/lib/cfnguardian/deploy.rb

@@ -2,40 +2,37 @@ require 'aws-sdk-cloudformation'
 require 'fileutils'
 require 'cfnguardian/version'
 require 'cfnguardian/log'
+require 'cfnguardian/error'
 
 module CfnGuardian
   class Deploy
     include Logging
 
-    def initialize(opts,bucket,parameters)
-      @stack_name = opts.fetch(:stack_name,'guardian')
+    def initialize(opts,bucket,parameters,template_file,stack_name)
+      @stack_name = stack_name
       @bucket = bucket
-      @prefix = @stack_name
-      @template_path = "out/guardian.compiled.yaml"
-      @template_url = "https://#{@bucket}.s3.amazonaws.com/#{@prefix}/guardian.compiled.yaml"
+      @s3_path = "#{stack_name}/#{template_file}"
+      @template_path = "out/#{template_file}"
+      @template_url = "https://#{@bucket}.s3.amazonaws.com/#{@s3_path}"
       @parameters = parameters
       @changeset_role_arn = opts.fetch(:role_arn, nil)
 
-      @tags = {}
-      if opts.has_key?("tag_yaml")
-        @tags.merge!(YAML.load_file(opts[:tag_yaml]))
+      @tags = opts.fetch(:tags, {})
+      if ENV.has_key?('CODEBUILD_RESOLVED_SOURCE_VERSION')
+        @tags[:'guardian:config:commit'] = ENV['CODEBUILD_RESOLVED_SOURCE_VERSION']
       end
-      @tags.merge!(opts.fetch(:tags, {}))
 
       @client = Aws::CloudFormation::Client.new()
     end
 
     def upload_templates
-      Dir["out/*.yaml"].each do |template|
-        prefix = "#{@prefix}/#{template.split('/').last}"
-        body = File.read(template)
-        client = Aws::S3::Client.new()
-        client.put_object({
-          body: body,
-          bucket: @bucket,
-          key: prefix
-        })
-      end
+      body = File.read(@template_path)
+      client = Aws::S3::Client.new()
+      client.put_object({
+        body: body,
+        bucket: @bucket,
+        key: @s3_path
+      })
     end
 
     # TODO: check for REVIEW_IN_PROGRESS
@@ -99,8 +96,11 @@ module CfnGuardian
         @client.wait_until :change_set_create_complete, change_set_name: change_set_id
       rescue Aws::Waiters::Errors::FailureStateError => e
         change_set = get_change_set(change_set_id)
-        logger.error("change set status: #{change_set.status} reason: #{change_set.status_reason}")
-        exit 1
+        if change_set.status_reason.include?("The submitted information didn't contain changes.") || change_set.status_reason.include?("No updates are to be performed") && @ignore_empty_change_set
+          raise CfnGuardian::EmptyChangeSetError, "No changes to deploy. Stack #{@stack_name} is up to date"
+        else
+          raise CfnGuardian::ChangeSetError, "Failed to create the changeset : #{e.message} Status: #{change_set.status} Reason: #{change_set.status_reason}"
+        end
       end
     end
 

data/lib/cfnguardian/error.rb

@@ -1,4 +1,6 @@
 module CfnGuardian
-    class ValidationError < StandardError
-    end
+    class ValidationError < StandardError; end
+    class TemplateValidationError < StandardError; end
+    class EmptyChangeSetError < StandardError; end
+    class ChangeSetError < StandardError; end
 end

data/lib/cfnguardian/resources/base.rb

@@ -20,13 +20,13 @@ module CfnGuardian::Resource
       @event_subscriptions = []
     end
     
-    # Overidden by inheritted classes to define default alarms
+    # Overidden by inherited classes to define default alarms
     def default_alarms()
       return @alarms
     end
     
     def get_alarms(group,overides={})
-      # deep copying the overrides to preserse it's reference before doing any changes to it
+      # deep copying the overrides to preserve its reference before doing any changes to it
       overides = Marshal.load(Marshal.dump(overides))
 
       # generate default alarms
@@ -72,12 +72,12 @@ module CfnGuardian::Resource
           alarm = find_alarm(properties['Inherit'])
           if !alarm.nil?
             logger.debug("creating new alarm #{name} for alarm group #{self.class.to_s.split('::').last} inheriting properties from alarm #{properties['Inherit']}")
-            inheritited_alarm = alarm.clone
+            inherited_alarm = alarm.clone
             alarm.name = name
-            properties.each {|attr,value| update_object(inheritited_alarm,attr,value)}
-            @alarms.push(inheritited_alarm)
+            properties.each {|attr,value| update_object(inherited_alarm,attr,value)}
+            @alarms.push(inherited_alarm)
           else
-            logger.warn "alarm '#{properties['Inherit']}' doesn't exists and cannot be inherited"
+            logger.warn "alarm '#{properties['Inherit']}' doesn't exist and cannot be inherited"
           end
           next
         end
@@ -124,7 +124,7 @@ module CfnGuardian::Resource
       return @alarms.select{|a| a.enabled}
     end
     
-    # Overidden by inheritted classes to define default events
+    # Overidden by inherited classes to define default events
     def default_events()
       return @events
     end
@@ -134,7 +134,7 @@ module CfnGuardian::Resource
       return @events.select{|e| e.enabled}
     end
     
-    # Overidden by inheritted classes to define default checks
+    # Overidden by inherited classes to define default checks
     def default_checks()
       return @checks
     end
@@ -144,7 +144,7 @@ module CfnGuardian::Resource
       return @checks
     end
     
-    # Overidden by inheritted classes to define default checks
+    # Overidden by inherited classes to define default checks
     def default_metric_filters()
       return @metric_filters
     end
@@ -154,20 +154,20 @@ module CfnGuardian::Resource
       return @metric_filters
     end
 
-    # Overidden by inheritted classes to define default checks
+    # Overidden by inherited classes to define default checks
     def default_event_subscriptions()
       return @event_subscriptions
     end
     
     def get_event_subscriptions(group, overides)
-      # generate defailt event subscriptions
+      # generate default event subscriptions
       default_event_subscriptions()
 
-      # overide the defaults
+      # override the defaults
       overides.each do |name, properties|
         event_subscription = find_event_subscriptions(name)
 
-        # disbable the event subscription if the value is false
+        # disable the event subscription if the value is false
         if [false].include?(properties)
           unless event_subscription.nil?
             event_subscription.enabled = false

data/lib/cfnguardian/resources/nrpe.rb

@@ -17,12 +17,14 @@ module CfnGuardian::Resource
           alarm.name = "#{command.to_camelcase}Warning"
           alarm.metric_name = command
           alarm.threshold = 0
+          alarm.alarm_action = 'Warning'
           @alarms.push(alarm)
           
           alarm = CfnGuardian::Models::NrpeAlarm.new(host,@environment)
           alarm.name = "#{command.to_camelcase}Critical"
           alarm.metric_name = command
           alarm.threshold = 1
+          alarm.alarm_action = 'Critical'
           @alarms.push(alarm)
         end
       end

data/lib/cfnguardian/validate.rb

@@ -3,6 +3,7 @@ require 'fileutils'
 require 'cfnguardian/version'
 require 'cfnguardian/log'
 require 'cfnguardian/s3'
+require 'cfnguardian/error'
 
 module CfnGuardian
   class Validate
@@ -25,7 +26,10 @@ module CfnGuardian
           success << validate_local(template)
         end
       end
-      return success.include?(false)
+
+      if success.include?(false)
+        raise CfnGuardian::TemplateValidationError, "One or more templates failed to validate"
+      end
     end
     
     def validate_local(path)

data/lib/cfnguardian/version.rb

@@ -1,4 +1,4 @@
 module CfnGuardian
-  VERSION = "0.8.6"
+  VERSION = "0.9.0"
   CHANGE_SET_VERSION = VERSION.gsub('.', '-').freeze
 end

data/lib/cfnguardian.rb

@@ -16,6 +16,10 @@ require "cfnguardian/tagger"
 module CfnGuardian
   class Cli < Thor
     include Logging
+
+    def self.exit_on_failure?
+      true
+    end
     
     map %w[--version -v] => :__print_version
     desc "--version, -v", "print the version"
@@ -40,28 +44,26 @@ module CfnGuardian
     method_option :sns_task, type: :string, desc: "sns topic arn for the task alarms"
     method_option :sns_informational, type: :string, desc: "sns topic arn for the informational alarms"
     method_option :sns_events, type: :string, desc: "sns topic arn for the informational alarms"
-
+    method_option :template_file, type: :string, default: 'guardian.compiled.yaml', desc: "name of the compiled cloudformation template file"
 
     def compile
       set_log_level(options[:debug])
       
       set_region(options[:region],options[:validate])
       s3 = CfnGuardian::S3.new(options[:bucket],options[:path])
-      
+
+      clean_out_directory()
+
       compiler = CfnGuardian::Compile.new(options[:config])
       compiler.get_resources
-      compiler.compile_templates(s3.bucket,s3.path)
+      compiler.compile_templates(options[:template_file])
       logger.info "Cloudformation templates compiled successfully in out/ directory"
       if options[:validate]
         s3.create_bucket_if_not_exists()
         validator = CfnGuardian::Validate.new(s3.bucket)
-        if validator.validate
-          logger.error("One or more templates failed to validate")
-          exit(1)
-        else
-          logger.info "Cloudformation templates were validated successfully"
-        end
+        validator.validate
       end
+
       logger.warn "AWS cloudwatch alarms defined in the templates will cost roughly $#{'%.2f' % compiler.cost} per month"
 
       if options[:template_config]
@@ -80,15 +82,16 @@ module CfnGuardian
     method_option :bucket, type: :string, desc: "provide custom bucket name, will create a default bucket if not provided"
     method_option :path, type: :string, default: "guardian", desc: "S3 path location for nested stacks"
     method_option :region, aliases: :r, type: :string, desc: "set the AWS region"
-    method_option :stack_name, aliases: :s, type: :string, desc: "set the Cloudformation stack name. Defaults to `guardian`"
+    method_option :stack_name, aliases: :s, type: :string, default: 'guardian', desc: "set the Cloudformation stack name. Defaults to `guardian`"
     method_option :sns_critical, type: :string, desc: "sns topic arn for the critical alarms"
     method_option :sns_warning, type: :string, desc: "sns topic arn for the warning alarms"
     method_option :sns_task, type: :string, desc: "sns topic arn for the task alarms"
     method_option :sns_informational, type: :string, desc: "sns topic arn for the informational alarms"
     method_option :sns_events, type: :string, desc: "sns topic arn for the informational alarms"
     method_option :tags, type: :hash, desc: "additional tags on the cloudformation stack"
-    method_option :tag_yaml, type: :string, desc: "additional tags on the cloudformation stack in a yaml file"
     method_option :role_arn, type: :string, desc: "IAM role arn that CloudFormation assumes when executing the change set"
+    method_option :template_file, type: :string, default: 'guardian.compiled.yaml', desc: "name of the compiled cloudformation template file"
+    method_option :fail_empty_change_set, type: :boolean, default: true, desc: "fail a cloudformation changeset if it contains no changes"
 
     def deploy
       set_log_level(options[:debug])
@@ -96,22 +99,19 @@ module CfnGuardian
       set_region(options[:region],true)
       s3 = CfnGuardian::S3.new(options[:bucket],options[:path])
       
+      clean_out_directory()
+
       compiler = CfnGuardian::Compile.new(options[:config])
       compiler.get_resources
-      compiler.compile_templates(s3.bucket,s3.path)
+      compiler.compile_templates(options[:template_file])
       parameters = compiler.load_parameters(options)
       logger.info "Cloudformation templates compiled successfully in out/ directory"
 
       s3.create_bucket_if_not_exists
       validator = CfnGuardian::Validate.new(s3.bucket)
-      if validator.validate
-        logger.error("One or more templates failed to validate")
-        exit(1)
-      else
-        logger.info "Cloudformation templates were validated successfully"
-      end
+      validator.validate
       
-      deployer = CfnGuardian::Deploy.new(options,s3.bucket,parameters)
+      deployer = CfnGuardian::Deploy.new(options,s3.bucket,parameters,options[:template_file],options[:stack_name])
       deployer.upload_templates
       change_set, change_set_type = deployer.create_change_set()
       deployer.wait_for_changeset(change_set.id)
@@ -119,26 +119,139 @@ module CfnGuardian
       deployer.wait_for_execute(change_set_type)
     end
 
+    desc "bulk-deploy", "Generates and deploys multiple monitoring CloudFormation templates from multiple config yamls"
+    long_desc <<-LONG
+    For each alarm configuration yamll file provided guardian will generate a CloudFormation template in output to the out/ directory.
+    The templates are copied to the s3 bucket and the cloudformation stacks are deployed.
+    The names of the Cloudformation stacks are determined by the config yaml name. e.g. alarms.myenv.yaml will deploy the stack myenv-guardian
+    LONG
+    method_option :config, aliases: :c, type: :array, desc: "yaml config files", required: true
+    method_option :bucket, type: :string, desc: "provide custom bucket name, will create a default bucket if not provided"
+    method_option :path, type: :string, default: "guardian", desc: "S3 path location for nested stacks"
+    method_option :region, aliases: :r, type: :string, desc: "set the AWS region"
+    method_option :sns_critical, type: :string, desc: "sns topic arn for the critical alarms"
+    method_option :sns_warning, type: :string, desc: "sns topic arn for the warning alarms"
+    method_option :sns_task, type: :string, desc: "sns topic arn for the task alarms"
+    method_option :sns_informational, type: :string, desc: "sns topic arn for the informational alarms"
+    method_option :sns_events, type: :string, desc: "sns topic arn for the informational alarms"
+    method_option :tags, type: :hash, desc: "additional tags on the cloudformation stack"
+    method_option :role_arn, type: :string, desc: "IAM role arn that CloudFormation assumes when executing the change set"
+    method_option :fail_empty_change_set, type: :boolean, default: true, desc: "fail a cloudformation changeset if it contains no changes"
+
+    def bulk_deploy
+      set_log_level(options[:debug])
+      
+      set_region(options[:region],true)
+      s3 = CfnGuardian::S3.new(options[:bucket],options[:path])
+      s3.create_bucket_if_not_exists
+      
+      clean_out_directory()
+
+      template_file_suffix = 'compiled.yaml'
+
+      compiled = []
+
+      options[:config].each do |config|
+        config_basename = File.basename(config, ".alarms.yaml")
+        guardian_name = config_basename == "alarms.yaml" ? "" : "-#{config_basename}"
+        template_file = "guardian#{guardian_name}.#{template_file_suffix}"
+
+        compiler = CfnGuardian::Compile.new(config)
+        compiler.get_resources
+        compiler.compile_templates(template_file)
+        logger.info "compiled template to out/#{template_file} from yaml config #{config}"
+        parameters = compiler.load_parameters(options)
+
+        compiled << {template_file: template_file, parameters: parameters}
+        logger.debug("template file #{template_file} generated with parameters: #{parameters}")
+      end
+
+      validator = CfnGuardian::Validate.new(s3.bucket)
+      validator.validate
+
+      changesets = []
+
+      compiled.each do |stack|
+        stack_name = stack[:template_file].gsub(".#{template_file_suffix}", "")
+        deployer = CfnGuardian::Deploy.new(options,s3.bucket,stack[:parameters],stack[:template_file],stack_name)
+        deployer.upload_templates
+        logger.info("creating changeset for stack #{stack_name}")
+        change_set, change_set_type = deployer.create_change_set()
+        changesets << {deployer: deployer, id: change_set.id, type: change_set_type}
+      end
+
+      changesets_executed = []
+      changesets.each do |changeset|
+        begin 
+          changeset[:deployer].wait_for_changeset(changeset[:id])
+        rescue CfnGuardian::EmptyChangeSetError => e
+          if options[:fail_empty_change_set]
+            raise e
+          else
+            logger.info e.message
+            next
+          end
+        end
+        logger.info("executing changeset #{changeset[:id]}")
+        changeset[:deployer].execute_change_set(changeset[:id])
+        changesets_executed << changeset
+      end
+
+      changesets_executed.each do |changeset|
+        logger.info("waiting for changeset #{changeset[:id]} to complete")
+        changeset[:deployer].wait_for_execute(changeset[:type])
+      end
+    end
+
     desc "tag-alarms", "apply tags to the cloudwatch alarms deployed"
     long_desc <<-LONG
     Because Cloudformation desn't support tagging cloudwatch alarms this command
     applies tags to each cloudwatch alarm created by guardian.
     Guardian defines default tags and this can be added to through the alarms.yaml config.
     LONG
-    method_option :config, aliases: :c, type: :string, desc: "yaml config file", required: true
+    method_option :config, aliases: :c, type: :array, desc: "yaml config files", required: true
     method_option :region, aliases: :r, type: :string, desc: "set the AWS region"
+    method_option :tags, type: :hash, desc: "additional tags on the cloudformation stack"
 
     def tag_alarms
       set_log_level(options[:debug])
       set_region(options[:region],true)
 
-      compiler = CfnGuardian::Compile.new(options[:config])
-      compiler.get_resources
-      alarms = compiler.alarms
+      tags = options.fetch(:tags, {})
 
-      tagger = CfnGuardian::Tagger.new()
-      alarms.each do |alarm|
-        tagger.tag_alarm(alarm, compiler.global_tags)
+      if ENV.has_key?('CODEBUILD_RESOLVED_SOURCE_VERSION')
+        tags[:'guardian:config:commit'] = ENV['CODEBUILD_RESOLVED_SOURCE_VERSION']
+      end
+
+      options[:config].each do |config|
+        config_basename = File.basename(config, "alarms.yaml")
+        stack_name_suffix = config_basename != "" ? "#{config_basename}-" : ""
+        tags[:'guardian:stack:name'] = "guardian#{stack_name_suffix}"
+        tags[:'guardian:config:yaml'] = config
+
+        logger.info "tagging alarms from config file #{config}"
+        compiler = CfnGuardian::Compile.new(config)
+        compiler.get_resources
+        alarms = compiler.alarms
+        global_tags = compiler.global_tags.merge(tags)
+
+        tagger = CfnGuardian::Tagger.new()
+        
+        counter = 0
+        max_retries = 3
+        alarms.each do |alarm| 
+          begin
+            tagger.tag_alarm(alarm, global_tags)
+          rescue Aws::CloudWatch::Errors::Throttling => e
+            logger.info "cloud watch throttling alarm tagging requests, retrying ..."
+            if (counter += 1) < max_retries
+              sleep(1)
+              redo 
+            else
+              loger.warn "throttled max times (#{max_retries}) tagging alarm #{alarm.name}, skipping ..."
+            end
+          end
+        end
       end
     end
 
@@ -165,7 +278,6 @@ module CfnGuardian
                 :title => "Guardian Alarm Drift".green, 
                 :headings => ['Alarm Name', 'Property', 'Expected', 'Actual', 'Type'], 
                 :rows => rows.flatten(1))
-        exit(1)
       end
     end
     
@@ -189,8 +301,7 @@ module CfnGuardian
       elsif options[:defaults]
         config_file = default_config()
       else
-        logger.error('one of `--config YAML` or `--defaults` must be supplied')
-        exit -1
+        raise Thor::Error, 'one of `--config YAML` or `--defaults` must be supplied'
       end
       
       compiler = CfnGuardian::Compile.new(config_file)
@@ -198,8 +309,7 @@ module CfnGuardian
       alarms = filter_compiled_alarms(compiler.alarms,options[:filter])
 
       if alarms.empty?
-        logger.error "No matches found" 
-        exit 1
+        raise Thor::Error, "No matches found" 
       end
       
       headings = ['Property', 'Config']
@@ -429,8 +539,7 @@ module CfnGuardian
         Aws.config.update({region: ENV['AWS_DEFAULT_REGION']})
       else
         if required
-          logger.error("No AWS region found. Please suppy the region using option `--region` or setting environment variables `AWS_REGION` `AWS_DEFAULT_REGION`")
-          exit(1)
+          raise Thor::Error "No AWS region found. Please suppy the region using option `--region` or setting environment variables `AWS_REGION` `AWS_DEFAULT_REGION`"
         end
       end
     end
@@ -461,5 +570,9 @@ module CfnGuardian
       return !parameter.nil? ? parameter.parameter_value : nil
     end
     
+    def clean_out_directory
+      Dir["out/*.yaml"].each {|file| File.delete(file)}
+    end
+
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: cfn-guardian
 version: !ruby/object:Gem::Version
-  version: 0.8.6
+  version: 0.9.0
 platform: ruby
 authors:
 - Guslington
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-08-24 00:00:00.000000000 Z
+date: 2022-09-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: thor
@@ -184,6 +184,20 @@ dependencies:
     - - "<"
       - !ruby/object:Gem::Version
         version: '2'
+- !ruby/object:Gem::Dependency
+  name: rexml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement